| Society security is a kind of forced insurance which is protected by country policy and law .It involves all the enterprises and relates to every employee's welfare, such as granting old-age pension, undergoing medical treatment in hospital. It is the focus of the mass, and it affects the whole society in unity and stability. In addition, from now the national occasion, it is a general tendency that the network among cities and provinces connect with formation network of guaranteeing of larger scope. The data distributed access will be an inevitable tendency, but as the important link of safe system, distributed access is not still settled well in social security system, which is the key to restrict business development seriously.As a developer of the information system of social insurance in Dalian official enterprise, author regards the application as the background of the thesis. According to the physical truth of the centre of each country each downtown in Dalian official enterprise, design and realize that data distributed access of insurance business in these places, in this basis, reaches and practices the role- based access control.This paper first introduces the basic principle of access control, analyze and compare with the advantages and disadvantages of popular DAC,MAC and RBAC access control of currents strategy, combining with the characteristics of social insurance, confirmed the model of the role- based access control in application. Above this basis, mainly discuss that some technical methods of the role- definition, the role-attribution, the role-inherit, role-store, role-algorithm of call back, role the ratings the handling, the authorization etc.Aim at the actual state of the centre of each county downtown without share date in Dalian, this paper discusses the function distribute and data distribute model of whole application, drawing out to distribute the condition down other land user of access mechanism, setting up control centre to steer the way of thinking that access control, and on the control centre to realize the functions of long-distance authorization, access control transmit, role repetition handling etc. Aim at the subject that other land user access can't realize a vice authenticated to pierce through whole conversation of the user, so this paper use a certificate as the basic and legal user of scheme of access control. That certificate once is held by the legal user, it willfollow the possessive access control of user to request, with the certificate, realizing the distributed access control of every locality user.By testing, this model is effective and safe. Besides, it is suitable for the role-based access control in social security system. The model in this paper has widespread meaning to safe access control of the social security system.
|
PDF Full Text Request